Build Your Career at Informatica
We're looking for a diverse group of collaborators who believe data has the power to improve society. Adventurous minds who value solving some of the world's most challenging problems. Here, employees are encouraged to push their boldest ideas forward, united by a passion to create a world where data improves the quality of life for people and businesses everywhere.
DevOps Security Engineer
- Develop security controls across cloud platforms (AWS, Azure, GCP) to enhance the security posture of our infrastructure.
- Perform cloud-specific penetration testing to identify vulnerabilities, misconfigurations, and insecure APIs, followed by remediation.
- Maintain automation scripts to improve cloud security processes, vulnerability scanning, and monitoring using tools like Python, Bash, or PowerShell.
- Collaborate with DevOps and infrastructure teams to ensure the secure deployment of services using container technologies like Docker and Kubernetes.
- Security incident response by analysing cloud-based security incidents and breaches.
- Manage cloud security monitoring tools, SIEM solutions (e.g., ELK SIEM, splunkl), and provide real-time threat detection and incident response capabilities.
- Ensure compliance with security standards and regulations (GDPR, HIPAA, NIST) within cloud environments.
- Review and enhance security policies, IAM roles, and permissions to prevent unauthorized access and data breaches.
- Participate in security audits, vulnerability assessments, and risk analysis to ensure understanding of industry best practices.
What We'd Like to See:
- Technical Expertise: experience with cloud platforms (AWS, Azure, Google Cloud), in security services like AWS IAM, Security Groups, VPC, and Azure Main Vault.
- Penetration Testing: Hands-on experience with cloud-specific pentesting tools (Prowler, ScoutSuite) and general security tools like Burp Suite, Metasploit, or Nessus.
- Automation Proficiency: Advanced scripting skills (Python, Bash, PowerShell) to develop automation for security monitoring, testing, and incident handling workflows.
- Container Security: Proficiency in securing containerized environments (Docker, Kubernetes) and managing cloud-native security solutions.
- Incident Response: Experience with digital forensics, incident handling, and response in cloud environments, using logs (AWS CloudTrail, Azure Monitor) to trace and reduce incidents.
- Compliance & Frameworks: Familiarity with security frameworks (CIS, NIST, ISO 27001) and experience implementing compliance measures in cloud-based infrastructures.
- : complex security issues to all partners, ensuring clarity and applicable insights.
- Certifications (Preferred): AWS Certified Security – Specialty, Offensive Security Certified Professional (OSCP), GIAC Certified Incident Handler (GCIH), or other relevant security certifications.
Your Responsibilities as a DevOps Security Engineer:
- Collaborate closely with development, operations, and security teams to integrate security measures into the entire software development lifecycle (SDLC).
- Automate security testing processes, such as Continuous Integration/Continuous Deployment (CI/CD) pipeline security checks, to identify vulnerabilities early in development.
- Develop security and incident response plans tailored to cloud environments to ensure rapid response to security incidents.
- Monitor cloud environments for vulnerabilities and potential threats using advanced security tools, ensuring proactive defence.
- Could you provide mentorship to junior team members and guidance on cloud security best practices to promote a culture of security-first thinking?
- Research and stay up-to-date with the latest cloud security threats, technologies, and best practices to ensure we remain to latest threats.
- Participate in post-incident reviews and root cause analysis to improve response strategies and reduce future risks.
Perks & Benefits
- Comprehensive health, vision, and wellness benefits (Paid parental leave, adoption benefits, life insurance, disability insurance and 401k plan or international pension/retirement plans
- Flexible time-off policy and hybrid working practices
- Equity opportunities and an employee stock purchase program (ESPP)
- Comprehensive Mental Health and Employee Assistance Program (EAP) benefit
We're guided by our DATA values and we are passionate about building and delivering solutions that accelerate data innovations. At Informatica, we know diversity drives innovation. We are proud to be an Equal Opportunity Employer dedicated to maintaining a work environment free from discrimination, one where all employees are treated with dignity.
Informatica (NYSE: INFA), an Enterprise Cloud Data Management leader, brings data and AI to life by empowering businesses to realize the transformative power of their most critical assets. We pioneered the Informatica Intelligent Data Management Cloud™ that manages data across any multi-cloud, hybrid system, democratizing data to advance business strategies. Customers in over 100 countries and 85 of the Fortune 100 rely on Informatica. www.informatica.com. Connect with LinkedIn, Twitter, and Facebook. Informatica. Where data and AI come to life.